Техническая информация
- расширений файлов
- <SYSTEM32>\wscript.exe ""%TEMP%\sweet.vbs""
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoRecentDocsMenu' = '1'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoClose' = '1'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoFind' = '1'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoRun' = '1'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] 'NoLogOff' = '1'
- [<HKCU>\Software\Microsoft\Internet Explorer\Main] 'Window Title' = 'Serial99.com'
- %TEMP%\sweet.vbs
- %TEMP%\sweet.vbs